“If a company has implemented best practices for their web resources traffic, the traffic should be forced to HTTPS by default,” said Josh Angell, application security consultant at nVisium. “However, this news does demonstrate a strong position by Google to lead by example and further encourage stronger controls around web traffic encryption in its products.”

Read entire article here